2

Remote Exploit Development Jobs in New York (NOW HIRING)

This is a remote position based in the United States, with occasional travel for conferences, team ... Track how threat actors exploit current events, emerging technologies, and changes in the threat ...

The Bigger Picture Join a 100% remote, highly specialized offensive security team where you will ... Offensive Security identifies weaknesses so the business can fix them before adversaries exploit ...

The Bigger Picture Join a 100% remote, highly specialized offensive security team where you will ... Offensive Security identifies weaknesses so the business can fix them before adversaries exploit ...

The Bigger Picture Join a 100% remote, highly specialized offensive security team where you will ... Offensive Security identifies weaknesses so the business can fix them before adversaries exploit ...

Remote (US or Canada) Type: US - Full-Time; Canada - Independent Contractor About Human Agency We ... AI-native product development. You'll ship product using AI as a core capability from day one - not ...

Remote Exploit Development information

What is the difference between Remote Exploit Development vs Penetration Tester?

AspectRemote Exploit DevelopmentPenetration Tester
CredentialsKnowledge of security vulnerabilities, programming, and sometimes certifications like OSCPCertifications like OSCP, CEH, and strong technical skills
Work EnvironmentTypically focused on developing exploits in controlled environments or labsConducts security assessments in client or corporate networks
Industry UsageUsed mainly in security research, offensive security, and exploit developmentUsed in cybersecurity, risk assessment, and compliance

Remote Exploit Development involves creating and testing exploits for vulnerabilities, often in a research or offensive security context. Penetration Testers simulate attacks to identify security weaknesses. While both roles require strong technical skills and security knowledge, exploit developers focus on developing exploits, whereas penetration testers perform broader security assessments.

What are the most commonly searched types of Exploit Development jobs in New York? The most popular types of Exploit Development jobs in New York are:
What cities in New York are hiring for Remote Exploit Development jobs? Cities in New York with the most Remote Exploit Development job openings:
Cyber Security Framework Engineer - Remote

Cyber Security Framework Engineer - Remote

micro1 AI

New York, NY • Remote

$50 - $90/hr

Part-time

Posted 10 days ago


Job description

Role Title: Red Team Lead (Offensive Cybersecurity)


Role Type: Contractor


Location: Remote


micro1 is engaging Red Team Leads (Offensive Cybersecurity) to contribute expertise to a customer's critical cybersecurity project. In this role, you'll apply your expertise to help train next-generation AI systems. Your work will shape how models learn, reason, and perform through high-quality, real-world input. No prior experience in AI is required — your domain knowledge is what matters.


Scope of Work

  1. Develop comprehensive taxonomies for cyber-capability tasks and attack stages relevant to modern threat landscapes.
  2. Design and validate evaluation frameworks for offensive security, focusing on real-world scenarios involving exploit chains, malware, cloud/appsec, and social engineering.
  3. Create safe and effective proxy tasks to simulate advanced attack vectors while maintaining strict boundaries and ethical controls.
  4. Formulate robust scoring rubrics to assess attack sophistication, coverage, and impact across diverse domains.
  5. Review, critique, and enhance benchmarks for red team operations to ensure alignment with evolving security risks and best practices.
  6. Produce clear, well-documented methodologies and technical write-ups, communicating complex security concepts to both technical and non-technical audiences.
  7. Collaborate asynchronously with project stakeholders to iterate on frameworks and incorporate feedback into deliverables.


Preferred Qualifications

  1. 5+ years of hands-on experience in offensive cybersecurity, red teaming, exploit development, or vulnerability research (8–20 years preferred for senior contributors).
  2. Track record as a principal security engineer, exploit developer, cloud red-team lead, malware reverse-engineer, or security researcher specializing in attack chains or social engineering.
  3. Deep expertise in cyber attack methodologies, exploit chains, and cloud/application security assessments.
  4. Strong background in malware analysis, reverse engineering, and/or social engineering tactics and defenses.
  5. Demonstrated ability to produce clear, actionable written and verbal communication for a variety of audiences.
  6. Advanced degree, relevant professional security certifications, or equivalent operational experience highly valued.
  7. Experience building benchmarking or evaluation frameworks in cybersecurity is a plus.